TWiT

Security Now - 16k MP3

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte. Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.

Autor

TWiT

Kategorie

Technology

Podcast-Website

twit.tv

Neueste Folge

27. Aug 2025

Wo hören?

Podcasts in der App Replaio Radio Bald verfügbar

Podcasts kommen bald in die App. Installiere sie jetzt und erlebe als Erster einen ganz neuen Blick auf Podcasts

Bei Google Play herunterladen Kostenlos installieren Android 5 Mio.+ Downloads · Bewertung 4,8 iOS bald

Folgen

SN1040: Clickjacking "Whac-A-Mole" 27.08.2025

/ Germany may soon outlaw ad blockers. / What's happening in the courts over AI. / The U.K. drops its demands of Apple. / New Microsoft 365 tenants being throttled. / Is Russia preparing to block Google Meet. / Bluesky suspends its service in Mississippi. / How to throttle AI / A tricky SSH-busting Go library. / Here comes the Linux desktop malware. / Apple just patched a doozy of a vulnerability....

SN1039: The Sad Case of ScriptCase 20.08.2025

/ What AI website summaries mean for Internet economics. / Time to urgently update Plex Servers (again). / Allianz Life stolen data gets leaked. / Chrome test Incognito-mode fingerprint script blocking. / Chrome 140 additions coming in two weeks. / Data brokers hide opt-out pages from search engines. / Secure messaging changes in Russia. / NIST rolls-out lightweight IoT crypto. / SyncThing moves t...

SN1038: Perplexity's Duplicity 13.08.2025

/ CISA's Emergency Directive to ALL Federal agencies re: SharePoint. / NVIDIA firmly says "no" to any embedded chip gimmicks. / Dashlane is terminating its (totally unusable) free tier. / Malicious repository libraries are becoming even more hostile. / The best web filter (uBlock Origin) comes to Safari. / The very popular SonicWall firewall is being compromised. / >100 models of Dell Latitude and...

SN1037: Chinese Participation in MAPP 06.08.2025

/ A follow-up to the SharePoint server patch mess. / How Russia arranges to spy on other country's local embassies. / "Dropbox Passwords" manager app is ending in October. / Signal will leave Australia rather than help spy. / YouTube deploys viewing history age-estimation heuristics. / Chrome adds clever lightweight extension signing to prevent abuse. / A domain registrar is coming close to losing...

SN1036: Inside the SharePoint 0-day RCE 30.07.2025

/ Brave randomizes its fingerprints. / The next Brave will block Microsoft Recall by default. / Clorox sues its IT provider for $380 million in damages. / 6-month Win10 ESU offers are beginning to appear. / Warfare has significantly become cyber. / Allianz Life loses control of 125 million customers' data. / The CIA's Acquisition Research Center website was hacked. / The Pentagon says the SharePoi...

SN1035: Cloudflare's 1.1.1.1 Outage 23.07.2025

/ Bypassing all passkey protections. / The ransomware attacks just keep on coming. / Cloudflare capitulates to the MPA and starts blocking. / The need for online age verification is exploding. / Microsoft really wants Exchange Servers to subscribe. / Russia (further) clamps down on Internet usage. / The global trend toward more Internet restrictions. / China can inspect locked Android phones. Use...

SN1034: Introduction to Zero Knowledge Proofs 16.07.2025

/ A glorious takedown of quantum factorization. / Notepad++ signs its own code signing certificate. / Dennis Taylor has Bobiverse Book 6 on his lap. / Crypto/ATM machines flat out outlawed. / Signal vs WhatsApp: Encryption in flight and at rest. / A close look at browser fingerprinting metrics. / Rewriting interpreters in memory-safe languages. / An introduction to zero-knowledge proofs.

SN1033: Going on the Offensive 09.07.2025

/ Another Israeli spyware vendor surfaces. / Win11 to delete restore points more quickly. / The EU accelerates its plans to abandon Microsoft Azure. / The EU sets timelines for Post-Quantum crypto adoption. / Russia to create a massive IMEI database. / Canada and the UK create the "Common Good Cyber Fund". / U.S. states crack down on Bitcoin ATMs amid growing scams. / Congressional staffers cannot...

SN1032: Pervasive Web Fingerprinting 02.07.2025

/ Let's Encrypt drops its long-running email notifications. / Microsoft's new "Unexpected Restart Experience". / Microsoft's response to last year's massive CrowdStrike outage. / Windows 10's extended service updates will sort of be free. / Russia-sold iPhones MUST include the RuStore app. / Lyon, in France, says bye-bye to Windows. Hello to Linux. / The US Gov gets more serious about memory-safe...

SN1031: How Salt Typhoon gets in 25.06.2025
SN1030: Internet Foreground Radiation 18.06.2025

/ An exploited iOS iMessage vulnerability Apple denies? / The NPM repository is under siege with no end in sight. / Were Comcast and Digital Realty compromised? Don't ask them. / Matthew Green agrees: XChat does not offer true security. / We may know how Russia is convicting Telegram users. / Microsoft finally decides to block two insane Outlook file types. / 40,000 openly available video camera a...

SN1029: The Illusion of Thinking 11.06.2025

/ In memoriam: Bill Atkinson. / Meta native apps & JavaScript collude for a localhost local mess. / The EU rolls out its own DNS4EU filtered DNS service. / Ukraine DDoS's Russia's Railway DNS ... and... so what? / The Linux Foundation creates an alternative Wordpress package manager. / Court tells OpenAI it must NOT delete ANYONE's chats. Period! :( / A CVSS 10.0 in Erlang/OTP's SSH library. / Can...

SN1028: AI Vulnerability Hunting 04.06.2025

/ Pwn2Own 2025, Berlin results. / PayPal seeks a "newly registered domains" patent. / An expert iOS jailbreak developer gives up.

SN1027: Artificial Intelligence 28.05.2025

/ What's the status of Encrypted Client Hello (ECH)? / What radio technology would be best for remote inverter shutdown? / Some DNS providers already block newly listed domains. / Knowing when not to click a link can take true understanding. / Why can losing a small portion of a power grid bring the rest down? / Where are we in the "AI Hype Cycle" and is this the first? / Speaking of hype: An AI s...

SN1026: Rogue Comms Tech Found in US Power Grid 21.05.2025

/ Chrome to actively refuse admin privileges. / Android Messenger is getting manual key verification. / Pwn2Own to add AI "pwning" as in-scope attack targets. / AI has already been found to be replicating. / Microsoft not killing off Office on Win10 after October. / 23andMe's asset purchaser revealed. / Many fun talking points thanks to our listeners. / Steve's review of "Andor", season 2. / What'...

SN1025: Secure Conversation Records Retention 14.05.2025

/ The state of Virginia passes an age-restriction law that has no chance. / New Zealand also tries something similar, citing Australia's lead. / A nasty Python package for Discord survived 3 years and 11K downloads. / The FBI says it's a good idea to discard end-of-life consumer routers. / What's in WhatsApp? Finding out was neither easy nor certain. / The UK's Cyber Centre says AI promises to mak...

SN1024: Don't Blame Signal 07.05.2025

/ Microsoft to officially abandon passwords and support their deletion. / Meta's RayBan smart-glasses weaken their privacy terms. / 30% of Microsoft code is now being written by AI. / Google says prying Chrome from it will damage its security. / Nearly 1,000 six-year old eCommerce backdoors spring to life. / eM Client moves to version 10.3 / A bunch of terrific listener feedback creates talking po...

SN1023: Preventing Windows Sandbox Abuse 30.04.2025

/ Enabling Firefox's Tab Grouping.

SN1022: Windows Sandbox 23.04.2025

/ Enabling Firefox's Tab Grouping.

SN1021: Device Bound Session Credentials 16.04.2025

/ Android to get "Lockdown Mode". / What's in the new editions of Chrome and Firefox? / Why did Apple silently re-enable automatic updates? / My new iPhone 16, Chinese tariffs and electronics. / Dynamic "hotpatching" coming to Win11 Enterprise & Edu. / Why is it so difficult for Oracle to fess up? / Another multi-year breach inside US Treasury. / An Apple -vs- the UK update. / "Thundermail" (Can't...

SN1020: Multi-Perspective Issuance Corroboration 09.04.2025

/ Canon printer driver vulnerabilities enable Windows kernel exploitation. / Astonishing cyber-security awareness from a household appliance manufacturer. / France tries to hook 2.5 million school children with a Phishing test. / Wordpress added an abuse prone feature in 2022. Guess what happened? / Oracle? Is there something you'd like to tell us? / Utah's governor just signed the App Store Accou...

SN1019: EU OS 02.04.2025

/ Kuala Lumpur International Airport says no to a ransom attack, switches to whiteboard. / A tired and jet-lagged Troy Hunt got Phished then listed himself on his own site. / Cloudflare completely pulls the plug on port 80 (HTTP) API access. / Malware is switching to obscure languages to avoid detection. FORTH, anyone? / Password reuse doesn't appear to be dropping. Cloudflare has numbers. / A lis...

SN1018: The Quantum Threat 26.03.2025

/ The dangers of doing things you don't understand. / Espressif responds to the claims of an ESP32 backdoor. / A widely leveraged mistake Microsoft stubbornly refuses to correct. / A disturbingly simple remote takeover of Apache Tomcat servers. / A 10/10 vulnerability affecting some ASUS, ASRock and HPE motherboards. / Google snapped up another cloud security firm but paid a price! / RCS messaging...

SN1017: Is YOUR System Vulnerable to RowHammer? 19.03.2025

An analysis of Telegram Messenger's crypto. A beautiful statement of the goal of modern crypto design. Who was behind Twitter's recent outage trouble? An embedded Firefox root certificate expired. Who was surprised? AI-generated Github repos, voice cloning, Patch Tuesday and an Apple 0-day. The FBI warns of another novel attack vector that's seeing a lot of action. Google weighs in on the Age Veri...

SN1016: The Bluetooth Backdoor 12.03.2025

Utah passes age verification requirement for app stores. The inside story on fake North Korean employees. Is that a Texas accent? An update on the ongoing Bybit cryptoheist saga. The industry may be making some changes in the wake of the Bybit attack. Apple pushes back legally against the UK's secret order. Did someone crack Passkeys? The UK launches a legal salvo at an innocent security researche...

Höre den Podcast Security Now - 16k MP3 in Replaio

Radio und Podcasts in einer App - kostenlos und ohne Anmeldung. Installiere sie noch heute und verpasse den Start nicht

Bei Google Play herunterladen

Replaio ist kein Herausgeber von Podcasts; die Namen der Sendungen, Cover und Audioinhalte gehören ihren Autoren und werden über öffentliche RSS-Feeds verbreitet